CVE-2026-47274 | mcdope pam_usb up to 0.8.x on Linux Environment Variable src/tmux.c uncontrolled search path (GHSA-pp29-w28g-r9h9)

A vulnerability, which was classified as problematic, has been found in mcdope pam_usb up to 0.8.x on Linux. Affected by this issue is some unknown functionality of the file src/tmux.c of the component Environment Variable Handler. The manipulation leads to uncontrolled search path.

This vulnerability is documented as CVE-2026-47274. The attack needs to be performed locally. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More